<img src="https://certify.alexametrics.com/atrk.gif?account=b2hlr1ah9W20em" style="display:none" height="1" width="1" alt="">

Data breach reports at record high

data security

According to a report by Computer Weekly, the Information Commissioner's Office (ICO) has dealt with more data breach reports and issued more fines in the past year than ever before.

This is a big improvement from two years ago, when a report, also by Computer Weekly revealed that an estimated 92% of data breaches go unreported to the ICO.

A half of all information security breaches are due to human error, more often than not, by people not understanding the policy.

With tougher penalties of up to €20m or 4% of  global annual turnover on the way as a result of the GDPR, there has never been a bigger incentive to get data security right.

Follow these top tips to improve data security and reporting:
  1. Familiarise yourself with your company's IT, information security, privacy and confidentiality rules and related policies - You can't fully protect yourself and your firm if you don't know what to do
  2. Be clear about your responsibilities - Know what data you are responsible for, what you are allowed to do with it and what you aren't
  3. Take extra care when taking data offsite - Only do this if it is absolutely essential; make sure that any data is encrypted or password-protected; and ensure that it's returned or deleted after use
  4. Only use secure networks to access or transfer your firm's data - Accessing your company's network via a public WiFi hotspot in a cafe will make you more vulnerable
  5. Only share information on a 'need to know' basis - Avoid forwarding data to groups of people data securityand take care typing email addresses to avoid sending data to the wrong recipient
  6. Understand and check document classifications (eg - Private, Confidential, Public, etc) and privileges - Even people in the same department or function may have different access rights so check who is entitled to what and how documents are classified before sharing them
  7. Follow the password rules - Use strong passwords and change them regularly; avoid sharing your password with anyone else as your password may give others access to restricted information
  8. Only use work devices to access information related to your firm - Avoid forwarding data to your personal email or smartphone
  9. If you're not sure how to protect your firm's data, ask - You can get more advice and support from the IT department or your manager
  10. Never conceal data losses or breaches - If you make a mistake, tell your manager or IT department immediately so your firm can act quickly to limit their losses

Leave a comment

Tick

eBook: Essential Uncovered

Skillcast Essentials is our best-selling library and there's a reason for that. Essentials library provides comprehensive coverage of the key compliance / conduct issues that companies in the UK face today.

Request now

Making digital learning accessible for all

As companies become more mature about the use of digital learning for engaging employees, their priorities are shifting from visuals and animation to more fundamental features, such as ...

Read More
Compliance Essentials News - January 2019

In this first update of the year, we have for you an analysis of Google's GDPR fine as well as several other compliance developments and points to ponder. This blog is dedicated to bringing you the ...

Read More
A refresh on the need for new Data Protection Officers in light of GDPR

Editors note: This post was originally published in April 2018 and has been refreshed to provide additional information. Today, 28th January, is Data Privacy Day. The purpose of Data Privacy Day is ...

Read More
FCA Compliance News - January 2019

With Brexit preparations continuing apace, the financial services regulators have been busy through December and January. Our mission is to bring you these items of news that touch upon the people ...

Read More